All Categories → Security → threat-intelligence

Top 106 threat-intelligence open source projects

Ti collector
本项目致力于收集网上公开来源的威胁情报,主要关注信誉类威胁情报(如IP/域名等),以及事件类威胁情报。
Threat Intel
Archive of publicly available threat INTel reports (mostly APT Reports but not limited to).
Mihari
A helper to run OSINT queries & manage results continuously
Elemental
Elemental - An ATT&CK Threat Library
Threat Hunting
Personal compilation of APT malware from whitepaper releases, documents and own research
Awesome Devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
Scot
Sandia Cyber Omni Tracker (SCOT)
Misp Modules
Modules for expansion services, import and export in MISP
Misp Training
MISP trainings, threat intel and information sharing training materials with source code
Misp Warninglists
Warning lists to inform users of MISP about potential false-positives or other information in indicators
Phishingkithunter
Find phishing kits which use your brand/organization's files and image.
Opensquat
Detection of phishing domains and domain squatting. Supports permutations such as homograph attack, typosquatting and bitsquatting.
Docker Misp
Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
Misp Dashboard
A dashboard for a real-time overview of threat intelligence from MISP instances
Threatbus
🚌 The missing link to connect open-source threat intelligence tools.
Mthc
All-in-one bundle of MISP, TheHive and Cortex
Awesome Csirt
Awesome CSIRT is an curated list of links and resources in security and CSIRT daily activities.
Chatter
internet monitoring osint telegram bot for windows
Misp Maltego
Set of Maltego transforms to inferface with a MISP Threat Sharing instance, and also to explore the whole MITRE ATT&CK dataset.
Certstreammonitor
Monitor certificates generated for specific domain strings and associated, store data into sqlite3 database, alert you when sites come online.
Analyzer
🔍 Offline Analyzer for extracting features, artifacts and IoCs from Windows, Linux, Android, iPhone, Blackberry, macOS binaries, emails and more
Pygreynoise
Python3 library and command line for GreyNoise
Dovehawk
Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
Ioc2rpz
ioc2rpz is a place where threat intelligence meets DNS.
Vulnerability Data Archive
With the hope that someone finds the data useful, we periodically publish an archive of almost all of the non-sensitive vulnerability information in our vulnerability reports database. See also https://github.com/CERTCC/Vulnerability-Data-Archive-Tools
Matire
Malware Analysis, Threat Intelligence and Reverse Engineering: LABS
Otx misp
Imports Alienvault OTX pulses to a MISP instance
Melody
Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulation.
Malcom
Malcom - Malware Communications Analyzer
Besafe
BeSafe is robust threat analyzer which help to protect your desktop environment and know what's happening around you
Harpoon
CLI tool for open source and threat intelligence
Klara
Kaspersky's GReAT KLara
Mitaka
A browser extension for OSINT search
Gosint
The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).
Watcher
Watcher - Open Source Cybersecurity Threat Hunting Platform. Developed with Django & React JS.
Misp Galaxy
Clusters and elements to attach to MISP events or attributes (like threat actors)
Dnstwist
Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation
1-60 of 106 threat-intelligence projects